Skip to content

Privacy policy

northernhorizon.no

This Privacy Policy is intended to inform you about how your personal data are processed during your visits to our website, as well as when you contact our company or use our services. It provides the information required by Article 13 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (“GDPR”). The Privacy Policy is for information purposes only and does not create any obligations for you (it is not a set of terms and conditions or a contract).

Who is the controller of your personal data?

  1. The controller of your personal data is Northern Horizon AS, Hovedveien 27, 9760 Nordvågen.
  2. For any matters related to personal-data protection you can contact us by e-mail at: contact@northernhorizon.no

How do we safeguard your personal data?

  1. Your personal data are processed in accordance with the GDPR and other currently applicable data-protection laws.
  2. We apply the technical and organisational measures required by national and EU law to protect the processed personal data and to secure them against unauthorised access, takeover, processing in breach of the law, alteration, loss or destruction.
  3. Providing personal data is voluntary but necessary to use those website functionalities that require them, as well as to conclude an agreement for our services and to issue accounting documents related to that agreement.
  4. If the legal basis for processing is consent, failing to provide it will prevent us from taking the action to which the consent relates. You may withdraw your consent at any time; this will not affect the lawfulness of processing carried out on the basis of consent before its withdrawal.

For what purpose and on what basis do we process your personal data, and how long will we store them?

We process your personal data primarily in order to provide the services we offer and thus perform concluded agreements, as well as to take steps at your request before such agreements are concluded. We also process your data to provide electronic services in connection with your use of our website. Your personal data may be processed for:

  1. Provision of services

The personal data you provide in connection with using our services (in particular: first name and surname, address [street, building number, unit number, city, country], e-mail address, telephone number, and for entrepreneurs also company name, address and VAT ID) are or may be processed for the following purposes and on these legal bases:

  1. performance of the service and thus of the agreement, as well as taking steps at your request before it is concluded (Art. 6(1)(b) GDPR);
  2. any establishment, exercise or defence of claims that may arise from your use of our services, and other purposes (e.g. archiving to prove facts) which constitute our legitimate interest (Art. 6(1)(f) GDPR);
  3. issuing and storing accounting documents and handling possible complaints, in accordance with applicable regulations (Art. 6(1)(c) GDPR).

Your personal data will be processed for the duration of the agreement, unless further storage results from applicable law (e.g. tax or accounting regulations) or is justified by limitation periods or our overriding interest resulting from legitimate interests. The longer storage period always prevails.

  1. Services provided electronically

Your personal data provided by you or other data collected in connection with your use of our website (such as, in particular: your IP address, request URL, device identifier, time spent on individual pages, browser type and language, date and time of use, screen resolution, operating-system type and version) are or may be processed for the following purposes and on these legal bases:

  1. provision of electronic services on the basis of the electronic-services agreement, as well as taking steps at your request before concluding that agreement (Art. 6(1)(b) GDPR);
  2. any establishment, exercise or defence of claims that may arise from your use of our website, and other purposes (e.g. archiving to prove facts) which constitute our legitimate interest (Art. 6(1)(f) GDPR).

Your personal data will be processed for the duration of the electronic-services provision, unless further storage is justified by limitation periods, results from applicable law, or is justified by our overriding interest based on legitimate interests. The longer storage period always prevails.

  1. Marketing and website analytics

Your personal data provided by you or other data collected in connection with your use of our website are or may be processed for the following purposes and on these legal bases:

  1. marketing of our services, which is our legitimate interest (Art. 6(1)(f) GDPR); sending commercial information or direct marketing via telecommunications end-devices and automated calling systems is possible only with your prior consent (Art. 6(1)(a) GDPR);
  2. creating compilations, analyses and statistics, including reporting and service-development planning, which is our legitimate interest (Art. 6(1)(f) GDPR);
  3. any establishment, exercise or defence of claims that may arise from your use of our website, and other purposes (e.g. archiving to prove facts) which constitute our legitimate interest (Art. 6(1)(f) GDPR).

Our marketing activities may involve displaying offers and ads tailored to you based on profiling (e.g. your activity on our site), allowing us to better match offers to customer groups and your preferences. These activities do not significantly affect you, and personalised ads are in our view more beneficial than displaying non-targeted offers. We will process your personal data for marketing activities based on consent until it is withdrawn, and for activities based on legitimate interest until you object, unless further storage is justified by limitation periods, applicable law, or our overriding interest. The longer storage period always prevails.

  1. Newsletter

Your personal data provided in connection with Newsletter subscription are or may be processed for the following purposes and on these legal bases:

  1. provision of the Newsletter service under the regulations, consisting of sending commercial information to the e-mail address you provided (Art. 6(1)(b) GDPR);
  2. any establishment, exercise or defence of claims that may arise in connection with your use of the website, and other purposes (e.g. archiving to prove facts) which constitute our legitimate interest (Art. 6(1)(f) GDPR).

Your personal data will be processed for the duration of the Newsletter subscription, unless further storage is justified by limitation periods, applicable law, or our overriding interest. The longer storage period always prevails.

  1. E-mail or phone contact

Your personal data provided in connection with e-mail or phone contact (i.e. data necessary to establish and maintain contact) and collected during further communication are or may be processed for the following purposes and on these legal bases:

  1. replying to your e-mail or phone enquiry, which is our legitimate interest (Art. 6(1)(f) GDPR);
  2. taking steps at your request before concluding an agreement, if the communication concerns that (Art. 6(1)(b) GDPR);
  3. any establishment, exercise or defence of claims that may arise in connection with your use of the website, and other purposes (e.g. archiving to prove facts) which constitute our legitimate interest (Art. 6(1)(f) GDPR).

Your personal data will be processed for the duration of the correspondence, unless further storage is justified by limitation periods, applicable law, or our overriding interest. The longer storage period always prevails.

What are cookies?

  1. The website uses cookie technology and similar functionalities. Cookies are stored on the end-device of the person visiting the website. Each visitor can choose the scope of cookies and then give consent via the cookie banner displayed during the first visit.
  2. Cookies are IT data, in particular text files, stored on the visitor’s end-device and intended for use on the website. Cookies usually contain the website’s name, the time they are stored and a unique number.
  3. Cookies are used mainly to ensure the proper functioning of the website. Depending on the scope chosen by the visitor, cookies may also be used to create statistics that help understand how users use the site, allowing improvement of its structure and content, and for marketing purposes—e.g. to reach visitors with advertising messages when they use other websites or social media (third-party cookies may be used for this purpose).
  4. Depending on the chosen cookie scope, they collect various information which generally does not constitute personal data. Some information, depending on the type of cookie, may enable identification when combined with other data. This applies mainly to cookies whose use requires consent. In relation to such information, other provisions of this Privacy Policy, particularly regarding data-subject rights, apply.
  5. Detailed information on the scope and types of cookies used on the website is available in the cookie banner displayed during the first visit, as well as after clicking the button with the “bitten cookie with letter Y” icon in the bottom-left corner. In the same way a visitor can change cookie preferences at any time, including withdrawing consent, without affecting the lawfulness of processing based on consent before its withdrawal.
  6. To ensure the proper functioning of the website, cookies are used under Article 173(3)(2) of the Telecommunications Law. In other respects, obtaining and storing information via cookies is based on the visitor’s consent given in the cookie banner or via “Cookie settings”. Consent also includes transferring collected data to marketing and analytics tool providers.
  7. Where cookies contain personal data, the basis is our legitimate interest (Art. 6(1)(f) GDPR) such as traffic analysis and marketing by us or third parties. Where third parties have direct access to such information, the basis will be their legitimate interest or separate consent. Where cookies are necessary to properly provide electronic services, the basis is Art. 6(1)(b) GDPR.
  8. Depending on the purposes and legal basis, information collected by cookies may be stored for varying periods. Details are in the cookie banner and under “Cookie settings”. If such information constitutes personal data, it is stored until an objection is raised, or for limitation periods or as required by law. The longer period always prevails.
  9. The website uses marketing and analytics tools from other providers that use third-party cookies (listed below). More information is in their privacy policies. Third-party cookies may be stored on the visitor’s device, and these providers may act as independent controllers or joint controllers with us.
  10. The website uses tools from:
  1. Some providers may store user data outside the European Economic Area. In such cases, data are transferred only to countries ensuring adequate protection, or with appropriate safeguards such as the European Commission’s standard contractual clauses.
  2. The website also uses additional Google Analytics features (Google Analytics Advertising Features). You can change this via browser settings or Google ads preferences.
  3. The website uses Google Consent Mode in Advanced version, so anonymous (cookieless) user data are used for conversion modelling.

Your rights

In connection with our processing of your personal data, you have a number of rights. You can exercise each right by contacting us via the e-mail or postal addresses indicated in section 2 “Who is the controller of your personal data?”

You have the right to:

  1. access your personal data and request their rectification, erasure or restriction of processing. Where processing is based on our legitimate interest, you have the right to object;
  2. withdraw consent where processing is based on consent. Withdrawal does not affect the lawfulness of processing prior to withdrawal;
  3. data portability where processing is based on consent or a contract, i.e. to receive your data in a structured, commonly used format;
  4. lodge a complaint with the President of the Personal Data Protection Office (ul. Stawki 2, 00-193 Warsaw) if you believe your rights are violated.

Who do we share your personal data with?

Your personal data may be disclosed to entities authorised under law, as well as to entities processing data on our behalf under agreements, e.g. hosting providers, marketing-service providers and IT-system suppliers. If processing involves concluding an agreement, data may also be shared with accounting-document software providers and an accounting office. We may also transfer data to providers of tools for analytics, statistics, traffic tracking and marketing automation.

In certain cases we use Google reCAPTCHA on our site to prevent automated bots, so Google Ireland Limited may obtain the user’s IP address.

Some service providers may store your data outside the EEA. In such cases, data are transferred only to countries ensuring adequate protection, or with appropriate safeguards such as the European Commission’s standard contractual clauses.

Your Arctic Journey Begins Here

Don’t leave your Arctic experience to chance — our expert guides, small groups, and years of experience make every journey one to remember.

Explore Our Tours
Contact us
HomePrivacy policy

2025 © Northern Horizon. Crafted by Black Studio.

Facebook-f Instagram Tripadvisor